$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft File: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft (raw, json) Hash identifier: /5gwk/e27JHu32/bCeyPuysJEw+LlSXXi+gxPhPerMo= Subject key identifier: CE:D8:19:A6:E4:20:32:9B:B6:D3:A7:A0:E6:5C:26:30:17:9D:9A:40 Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft Manifest number: A7 Signing time: Sat 15 Feb 2025 07:31:13 +0000 Manifest this update: Sat 15 Feb 2025 07:31:13 +0000 Manifest next update: Sat 22 Feb 2025 07:31:13 +0000 Files and hashes: 1: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl (hash: SPtJRbqNVLM9/CHxxCHY8u1LEfKF2i5i3DpDOmKlygI=) 2: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (hash: 31H5Vhs+f/h3u06zcfDWH9AwqpcXpDRyJ5vXA17DcEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80 Validity Not Before: Feb 15 07:31:13 2025 GMT Not After : Feb 22 07:31:13 2025 GMT Subject: CN=67b042c1-0b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3c:f1:86:80:70:be:52:5d:5f:07:82:28:29: cc:2a:5c:a0:27:2e:8d:b7:4d:d4:01:98:db:13:4b: 7c:f2:6c:2b:61:15:6d:39:c9:77:8a:cb:f9:5d:8a: e6:17:d9:5a:02:2f:0a:44:b5:4d:08:a3:d4:bc:e6: a8:0c:d1:c2:41:ef:a1:98:da:55:bd:75:a3:f2:49: c7:04:29:e1:8d:20:2e:72:86:43:f6:a2:ad:32:3d: 51:8f:d4:e0:68:ed:93:b7:fc:3f:57:83:96:c0:36: df:4c:2e:97:dd:1e:f8:36:b9:fc:12:9c:af:76:8d: b0:1e:12:21:a6:2a:86:7a:2f:74:c5:20:1b:8e:83: a8:72:e7:d8:0c:19:19:c2:10:ca:7d:6b:fd:e1:5c: 3a:f2:c8:62:66:6a:3d:dc:71:ad:33:f2:67:87:a1: 66:22:aa:c4:16:36:3b:79:f5:ce:58:f7:8d:f6:9a: 1a:33:39:17:1e:75:2d:6d:7b:9c:44:ee:a2:4c:51: 72:10:e5:98:03:0a:4a:62:95:11:80:1e:ba:95:16: 3a:76:97:5a:93:44:6d:75:21:f6:df:6e:c8:f1:85: 43:73:f0:c9:2c:9f:e8:6f:6a:fa:b7:19:72:31:ba: e2:cf:4e:06:e7:a1:26:0b:29:52:56:85:0c:96:cc: 4c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D8:19:A6:E4:20:32:9B:B6:D3:A7:A0:E6:5C:26:30:17:9D:9A:40 X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ea:3a:bd:27:11:dc:c9:8b:e2:0e:1b:50:c1:64:94:6d:eb: 2a:2c:60:5a:ae:03:05:14:61:6f:89:43:ec:fe:92:5e:4c:2b: 3c:66:7d:7a:05:42:8b:c6:8b:f9:92:7f:71:c9:8b:34:06:58: 3b:71:b1:75:8e:8f:f5:c8:b5:e7:54:d0:55:b1:4e:71:02:ab: 4b:83:12:ae:17:c3:0a:5a:4a:55:e7:76:c3:12:e1:46:15:ce: d8:80:94:3f:fc:de:a6:06:ee:a2:21:e4:58:2a:fc:2b:17:eb: 64:ba:e1:68:6b:26:f5:37:17:93:18:e0:35:01:5d:4d:63:78: a4:fd:c5:01:ad:fd:66:d6:fe:93:8f:58:80:10:56:fd:14:44: 67:21:79:9b:e0:d5:41:ed:d2:d3:55:c8:1c:96:62:3c:21:0c: d6:75:d3:fa:20:f7:49:39:00:1f:46:6f:b8:e6:c8:25:22:92: 38:77:27:18:20:ce:1f:f9:21:d2:b8:53:5d:b5:4e:56:fb:7e: f9:68:d8:62:d0:82:8d:e1:a5:51:3e:31:b5:72:b6:22:b2:fd: 34:9c:4c:71:40:59:52:df:bd:8c:28:5a:ce:55:d8:57:70:cf: 02:d4:ba:8c:15:60:de:4c:8e:63:7e:ee:58:28:e8:c6:94:47: 09:a9:9f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGODAxMTAvBgNVBAUTKEY0MTBDNDgzQTRDOEM5MTZGRkQ0Q0Y0MjBDNEMxMTA4 ODk3OTg4OTEwHhcNMjUwMjE1MDczMTEzWhcNMjUwMjIyMDczMTEzWjAYMRYwFAYD VQQDEw02N2IwNDJjMS0wYjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TzxhoBwvlJdXweCKCnMKlygJy6Nt03UAZjbE0t88mwrYRVtOcl3isv5XYrm F9laAi8KRLVNCKPUvOaoDNHCQe+hmNpVvXWj8knHBCnhjSAucoZD9qKtMj1Rj9Tg aO2Tt/w/V4OWwDbfTC6X3R74Nrn8Epyvdo2wHhIhpiqGei90xSAbjoOocufYDBkZ whDKfWv94Vw68shiZmo93HGtM/Jnh6FmIqrEFjY7efXOWPeN9poaMzkXHnUtbXuc RO6iTFFyEOWYAwpKYpURgB66lRY6dpdak0RtdSH2327I8YVDc/DJLJ/ob2r6txly Mbriz04G56EmCylSVoUMlsxMYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7YGabk IDKbttOnoOZcJjAXnZpAMB8GA1UdIwQYMBaAFPQQxIOkyMkW/9TPQgxMEQiJeYiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkY4MC85NEM1NEI4MDAz OTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlSYl8xTTlDREV3UkNJbDVp SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkY4MC85NEM1NEI4MDAzOTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlS Yl8xTTlDREV3UkNJbDVpSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx6jq9JxHcyYviDhtQwWSUbesqLGBargMFFGFviUPs/pJeTCs8Zn16 BUKLxov5kn9xyYs0Blg7cbF1jo/1yLXnVNBVsU5xAqtLgxKuF8MKWkpV53bDEuFG Fc7YgJQ//N6mBu6iIeRYKvwrF+tkuuFoayb1NxeTGOA1AV1NY3ik/cUBrf1m1v6T j1iAEFb9FERnIXmb4NVB7dLTVcgclmI8IQzWddP6IPdJOQAfRm+45sglIpI4dycY IM4f+SHSuFNdtU5W+375aNhi0IKN4aVRPjG1crYisv00nExxQFlS372MKFrOVdhX cM8C1LqMFWDeTI5jfu5YKOjGlEcJqZ8o -----END CERTIFICATE-----Generated at Sun Feb 16 20:35:38 2025 by rpki-client